IT Governance Books at Amazon.com

« COBIT
Manage your team using CobiT »

New COBIT

The next release of COBIT is 4.1 which is due out in early May. ISACA has posted a list of the changes from the current version, 4.0, here.

For those too lazy to click the link, here is the information:

  • Enhanced executive overview
  • Explanation of goals and metrics in the framework section
  • Better definitions of the core concepts. It is important to mention that the definition of a control objective changed, shifting more toward a management practice statement.
  • Improved control objectives resulting from updated control practices and Val IT development activity. Some control objectives were grouped and/or reworded to avoid overlaps and make the list of control objectives within a process more consistent. These changes resulted in the renumbering of the remaining control objectives. Some other control objectives were reworded to make them more action-oriented and consistent in wording. Specific revisions include:
    • - AI5.5 and AI5.6 were combined with AI5.4
    • - AI7.9, AI7.10 and AI7.11 were combined with AI7.8
    • - ME3 was revised to include compliance with contractual requirements in addition to legal and regulatory requirements
  • Application controls have been reworked to be more effective, based on work to support controls effectiveness assessment and reporting. This resulted in a list of six application controls replacing the 18 application controls in COBIT 4.0, with further detail provided in COBIT Control Practices, 2nd Edition.
  • The list of business goals and IT goals in appendix I was improved, based on new insights obtained during validation research executed by the University of Antwerp Management School (Belgium).
  • The pull-out has been expanded to provide a quick reference list of the COBIT processes, and the overview diagram depicting the domains has been revised to include reference to the process and application control elements of the COBIT framework.
  • Improvements identified by COBIT users (COBIT 4.0 and COBIT Online) have been reviewed and incorporated as appropriate.

I’ve started my reading on COBIT because the changes don’t look that significant, but I would hold off on actually doing too much with it until 4.1 is released.


This entry was posted on Tuesday, April 10th, 2007 at 2:33 PM and filed under COBIT.
Follow comments here with the RSS 2.0 (XML) feed. Post a comment or leave a trackback.

Comments (1) to “New COBIT”

  1. Mike wrote:

    Something I want to share over here is that companies complying with COBIT 4.0 regulation (and I think that same can be extended to COBIT 4.1 with very little modification) can comply with many other regulations and standards also. A crosswalk poster between different regulations is a very useful tool, especially when it is available at no cost. This poster is crosswalk between: ISO 17799, Sarbanes Oxley, HIPAA, COBIT 4.0, Payment Card Industry (PCI), GLBA, NERC standards CIP and PIPEDA (Canada) http://www.compliancehome.com/symantec/.

    Posted on 16-Jul-07 at 8:50 pm | Permalink

Post a Comment
*Required
*Required (Never published)
 
Business Blogs - BlogCatalog Blog Directory